Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
File: 5ZAclsdH6RYsrv5QFArlMhsjxXw.mft (raw, json)
Hash identifier: UwR77cRsTEPGMbfZ6QG1K7atFa5SMAcWa88mvrNh++k=
Subject key identifier: 7E:A6:2F:DA:3F:DD:66:1B:6B:CE:2A:EB:E7:D6:E0:05:FF:57:D9:2E
Authority key identifier: E5:90:1C:96:C7:47:E9:16:2C:AE:FE:50:14:0A:E5:32:1B:23:C5:7C
Certificate issuer: /CN=e5901c96c747e9162caefe50140ae5321b23c57c
Certificate serial: 01965537D69970A7C743F1266B24A8E52E9F
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
Manifest number: 48
Signing time: Sun 20 Apr 2025 22:00:44 +0000
Manifest this update: Sun 20 Apr 2025 22:00:44 +0000
Manifest next update: Mon 21 Apr 2025 22:00:44 +0000
Files and hashes: 1: 5ZAclsdH6RYsrv5QFArlMhsjxXw.crl (hash: 5NJlppm3L+0537UhWbVDvefiUdaPA55ixOBHWnyo5yo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.crl
rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Mon 21 Apr 2025 16:00:10 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:96:55:37:d6:99:70:a7:c7:43:f1:26:6b:24:a8:e5:2e:9f
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=e5901c96c747e9162caefe50140ae5321b23c57c
Validity
Not Before: Apr 20 22:00:44 2025 GMT
Not After : Apr 21 22:00:44 2025 GMT
Subject: CN=7ea62fda3fdd661b6bce2aebe7d6e005ff57d92e
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:ec:9e:cf:54:29:00:ba:76:58:47:e5:5d:79:aa:
59:80:76:44:f6:fd:c1:c5:9d:59:92:8d:32:14:33:
cd:d5:a5:bf:fd:1d:3f:46:53:3f:33:a5:ab:ee:37:
35:27:42:0a:58:32:a6:89:e0:62:4e:59:df:21:da:
1c:2a:70:b4:c2:1e:e3:cc:06:a1:b0:95:51:94:f6:
61:b3:e3:eb:16:53:21:43:96:bc:79:40:2c:98:48:
d8:6b:b2:ee:81:7c:05:c2:db:f3:42:54:b1:73:f5:
ae:f3:d2:63:de:7d:30:7e:eb:68:37:73:b5:4b:aa:
00:5d:04:78:5a:0b:6a:be:ed:81:b0:45:e8:67:c9:
19:80:75:a6:5c:3e:38:d5:cc:db:54:aa:e7:f2:12:
02:52:00:6e:23:a3:87:27:57:69:22:9a:c7:82:a9:
c3:79:80:18:8a:c8:3b:86:4c:a2:98:73:8e:1e:39:
b7:67:87:f8:cc:cb:4b:8a:19:82:10:ae:3d:67:7a:
77:ef:fd:cf:74:04:5d:4b:47:9b:59:b3:2a:7c:4d:
11:39:58:73:d3:77:d9:04:08:e1:b6:26:1e:46:b4:
02:48:8b:e0:57:70:f0:fe:f4:53:25:04:30:2e:2b:
32:57:bf:ec:8e:28:36:7d:24:c8:3f:fb:9e:97:ff:
ed:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
7E:A6:2F:DA:3F:DD:66:1B:6B:CE:2A:EB:E7:D6:E0:05:FF:57:D9:2E
X509v3 Authority Key Identifier:
keyid:E5:90:1C:96:C7:47:E9:16:2C:AE:FE:50:14:0A:E5:32:1B:23:C5:7C
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/5ZAclsdH6RYsrv5QFArlMhsjxXw.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/0f/040070-64b0-46f8-a360-02206303d713/1/5ZAclsdH6RYsrv5QFArlMhsjxXw.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
6d:1c:2b:6e:e2:09:f1:db:4d:52:4c:a6:f7:ff:48:8b:3e:14:
24:0b:b3:93:94:38:ac:95:b0:c1:b2:95:bb:79:7d:04:46:8e:
69:da:67:62:69:61:b0:24:cb:a9:ae:6f:5a:6a:be:bf:1b:b3:
97:a2:2f:ac:90:c3:65:67:95:26:6c:dc:db:5a:6b:34:97:a4:
3a:ed:03:69:38:73:d0:d7:33:36:23:b4:29:f4:4a:86:d3:aa:
88:63:44:90:02:c9:36:29:00:fa:3c:31:a4:5b:04:a1:84:4f:
4d:ea:07:41:75:66:3a:98:e3:a0:7e:88:87:29:26:c5:09:e1:
d4:dc:9a:84:8c:a6:68:46:1f:d2:3a:e1:55:58:8c:8f:f2:e6:
9a:20:51:11:79:db:5a:cf:67:c3:f7:d2:6d:6e:a0:7b:70:21:
37:b1:ba:26:83:fb:13:9c:d8:6e:f3:15:c4:9f:9e:ad:9c:bd:
65:f5:5d:a1:dc:07:14:4b:55:b3:5c:80:bb:ed:89:98:f2:0b:
25:c7:5e:1a:bf:98:5d:75:26:ac:ed:26:50:8d:4c:6a:5e:6d:
17:74:b8:ec:8f:bf:70:2a:74:bc:cb:a6:0a:43:4a:cf:60:07:
fa:8b:52:8a:be:1f:56:18:18:8b:6f:97:f6:65:2c:16:bd:f2:
6a:16:98:82
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Apr 21 01:28:57 2025 by rpki-client